LevelOne EAP-200 User Manual Download

Page: 1 / 81

LevelOne

EAP-200

Enterprise Access Point

User Manual

V1.00

Summary of Contents for EAP-200

Page 1: ...1 LevelOne EAP 200 Enterprise Access Point User Manual V1 00...

Page 2: ...1 7 4 1 Change Password 71 7 4 2 Backup Restore 72 7 4 3 System Upgrade 73 7 4 4 Reboot 74 7 4 4 Upload Certificate 75 7 5 Status 76 7 5 1 Overview 76 7 5 2 Associated Clients 78 7 5 3 Repeater 79 7 5...

Page 3: ...viduals with basic network system knowledge to complete the installation Section 1 02 1 2 Document Conventions Represents essential steps actions or messages that should not be ignored Note Contains r...

Page 4: ...s Manual and QIG x1 Console Cable x1 Ethernet Cable x1 Power Adapter DC 12V x1 Antenna x2 Screw Pack x1 Ground Cable x1 It is recommended to keep the original packing materials for possible future sh...

Page 5: ...ed Access WPA and WPA2 By pushing a purposely built button the WES Press n Connect feature makes it easy to bridge wireless links of multiple EAP 200s for forming wider wireless network coverage EAP 2...

Page 6: ...above deployment scenario illustrates a deployment example using three access points AP 1 AP 2 and AP 3 Three EAP 200 systems construct a network comprising of wired and wireless segments AP 2 plays t...

Page 7: ...nning WES process 3 Console Attach the serial cable here 4 LAN1 LAN2 Attach the Ethernet cable here for connection with wired local networks 5 Reset Hardware reset button press once to reset to the sy...

Page 8: ...ED ON indicates wireless ready 4 WDS LED LED ON indicates WDS ready 5 WES LED To indicate WES status Master Slave WES Start LED Green OFF and then BLINKING SLOWLY LED Red OFF and then BLINKING SLOWLY...

Page 9: ...existing wired LAN network 3 There are two ways to supply power over to EAP 200 a Connect the DC power adapter to the EAP 200 power socket b EAP 200 LAN port is capable of transmitting DC currents Co...

Page 10: ...ssword is forgotten 1 In order to connect to the console port of EAP 200 a console modem cable and a terminal simulation program such as the Hyper Terminal are needed 2 If a Hyper Terminal is used ple...

Page 11: ...om the console interface key in reset2def for login and password Confirm yes and EAP 200 will begin the reset process When the login prompt reappears the device has completed the reset to default proc...

Page 12: ...PC to the LAN port of EAP 200 via an Ethernet cable Then set a static IP Address on the same subnet mask as the EAP 200 in TCP IP settings of your PC such as the following example IP Address 192 168 1...

Page 13: ...13 The Web Management Interface System Overview Page...

Page 14: ...er right hand corner of the interface to return to the Administrator Login Page Click OK to logout Logout Logout Prompt For security reasons it is strongly recommended to change the administrator s pa...

Page 15: ...racters and retype it in the Re enter New Password field Congratulation Now LevelOne s EAP 200 is installed and configured successfully It is strongly recommended to make a backup copy of configuratio...

Page 16: ...having prepared the EAP 200 s hardware for configuration set the TCP IP settings of administrator s computer to have a static IP Address of 192 168 1 10 and Subnet Mask of 255 255 255 0 Step 1 Config...

Page 17: ...TP The default is Manual and requires individual setup every time the system starts up Simply choose a time zone and set the time accordingly When finished click SAVE Manually Time Setup The alternati...

Page 18: ...t decides the AP will be getting dynamic IP Addresses from the connected network set Mode to DHCP otherwise set Mode to Static and fill in the required fields marked with a red asterisk IP Address Net...

Page 19: ...al tab On this page we only need to choose the Band and Channel that we wish to use Wireless General Settings Page On this page select the Band with which the AP is to broadcast its signal The rest of...

Page 20: ...figuration other VAP configuration can refer to the same setup steps as done for VAP 1 Click on the Overview tab to proceed Virtual AP Overview Page On this page click the hyperlink in the row and col...

Page 21: ...afterwards enter an ESSID to represent the WLAN associated with AP s VAP 1 It is suggested that Profile Name is used to describe what this particular VAP will be used for otherwise leave it as default...

Page 22: ...ls of services from the same physical AP device Please click on the Wireless icon to review the VAP Overview page VAP Overview Page To proceed with specific VAP configuration click on the correspondin...

Page 23: ...tive Profile Name and an appropriate ESSID for clients to associate to A VLAN ID can be provided to indicate the traffics through this particular VAP It may allow further management control e g access...

Page 24: ...for other VAP with security requirement Step 1 Ensure the intended VAP is Enabled VAP Overview Page On the VAP Overview page check the table to confirm the VAP State If it is Enabled skip to Step 2 If...

Page 25: ...s desired skip to the Step3 MAC restriction can be coupled with wireless security to provide extra protection First click on the corresponding cell in the column labeled Security Type This hyperlink w...

Page 26: ...28 bit or 152 bit Security Settings WEP 802 11 Authentication Select from Open System Shared Key or Auto WEP Key Length Select from 64 bit 128 bit 152 bit key length WEP Key Format Select from ASCII o...

Page 27: ...cond RADIUS Server Settings o Host Enter the IP address or domain name of the RADIUS server o Authentication Port The port number used by the RADIUS server Specify a port number or use the default 181...

Page 28: ...m TKIP WPA AES WPA TKIP WAP2 AES WAP2 or Mixed Pre shared Key Type Select a pre shared key type PSK Hex or Passphrase Pre shared Key Enter the key value for the pre shared key the format of the key va...

Page 29: ...pecify a port number or use the default 1812 o Secret Key The secret key for the system to communicate with the RADIUS server o Accounting Service Enabling this option allows accounting of login and l...

Page 30: ...entified by their MAC addresses listed in the Allow List allowed MAC addresses is granted with access to the system The administrator can temporarily block any allowed MAC address by checking Disable...

Page 31: ...31 MAC ACL Deny List...

Page 32: ...ected all incoming MAC addresses will be authenticated by an external RADIUS server Please note that each VAP MAC ACL and its security type shown on the Security Settings page share the same RADIUS co...

Page 33: ...l be configured by the same way Step 1 Make sure the Band and Channel are matched between the WDS peers In order to create a valid WDS link the two EAP 200s must be configured to use the same channel...

Page 34: ...t such occurrence please make sure Layer 2 STP is enabled To turn on this feature please click on the System and then Network Interface tab Network Settings Page Please select Enable in the field labe...

Page 35: ...e WMI displayed in the center of the interface It is also referred to as the configuration page The Main Menu on the top of the WMI allows the administrator to traverse to various management functions...

Page 36: ...ut the user must reboot the system upon the completion of all configurations for the changes to take effect Upon clicking SAVE the following message will appear Some modification has been saved and wi...

Page 37: ...intenance purpose it is highly recommended to have the following information stated as clearly as possible Name The system name used to identify this system Description Further information about the s...

Page 38: ...at one otherwise locate a nearby NTP server on the web 2 Manually set up By selecting Manually set up the administrator can manually set the system date and time Manual Time Configuration Fields Set D...

Page 39: ...Domain Name System server o Alternate DNS Server The IP address of the substitute DNS server DHCP This configuration type is applicable when the system is connected to a network with the presence of a...

Page 40: ...for Management When it is enabled management traffics from the system will be tagged with a VLAN ID In other words administrator who wants to access the WMI must send management traffics with the sam...

Page 41: ...bled events on Cold Start Interface UP Down and Association Disassociation can be reported to an assigned server o Enable Disable Enable or Disable this function o Server IP Address Enter the IP addre...

Page 42: ...WMI page will automatically open to confirm the changes Click Restart link and EAP 200 will restart to activate the tunnel A new window will automatically open and display the tunnel settings from the...

Page 43: ...cate DNS SRV Discovery The way of using DNS SRV to discover acess controller Domain Name Suffix Enter the suffix of the access controller such as example com DHCP Option Discovery The way of using DHC...

Page 44: ...44 Manage Certificates...

Page 45: ...ts own settings e g ESSID VLAN ID security settings etc With such VAP capabilities different levels of service can be configured to meet network requirements a 7 2 1 VAP Overview An overall status is...

Page 46: ...The hyperlink showing Enable or Disable connects to the VAP Configuration page VAP State Page Security Type The hyperlink showing the security type connects to the Security Settings Page VAP Security...

Page 47: ...erlink showing Allow or Disable connects to the Access Control Settings Page VAP MAC ACL Page Advanced Settings The advanced settings hyperlink connects to the Advanced Wireless Settings Page VAP Adva...

Page 48: ...is 802 11g 802 11n Double channel bandwidth to 40 MHz is supported to enhance throughput Channel Select the appropriate channel from the drop down menu to correspond with your network settings for exa...

Page 49: ...136 140 6M 9M 12M 18M 24M 36M 48M 54M Auto Lowest Low Medium High Highest 802 11b 1 2 3 4 5 6 7 8 9 10 11 12 13 1M 2M 5 5M 11M 802 11g 1 2 3 4 5 6 7 8 9 10 11 12 13 6M 9M 12M 18M 24M 36M 48M 54M 802 1...

Page 50: ...d in the profile as follows VAP Enable or Disable this VAP Profile Name The profile name of specific VAP for identity management purposes ESSID ESSID Extended Service Set ID serves as an identifier fo...

Page 51: ...curity type includes None WEP 802 1X WPA PSK and WPA RADIUS None Authentication is not required and data is not encrypted during transmission when this option is selected This is the default setting a...

Page 52: ...rovided Security Settings 802 1X Authentication Dynamic WEP Settings o Dynamic WEP For 802 1X security type Dynamic WEP is always enabled to automatically generate WEP keys for encryption o WEP Key Le...

Page 53: ...cess Pre shared Key is a pre shared key authentication method a special mode of WPA Security Settings WPA PSK Cipher Suite Select an encryption method from TKIP WPA AES WPA TKIP WAP2 AES WAP2 or Mixed...

Page 54: ...e IP address or domain name of the RADIUS server o Authentication Port The port number used by the RADIUS server Specify a port number or use the default 1812 o Secret Key The secret key for the syste...

Page 55: ...the SSID of upper bound AP for uplink connection Security Type None WEP or WPA PSK can be configured for this Repeater connection Please note the security type configured here shall follow upper boun...

Page 56: ...spectively Please fill in remote peer s MAC address and click SAVE to proceed if setting revision is necessary CLEAR button is used to clear the contents in the above WDS connection list Repeater Sett...

Page 57: ...t each other Fragmentation Threshold Enter a value between 256 and 2346 The default is 2346 A packet size larger than this threshold will be fragmented sent with several pieces instead of one chunk be...

Page 58: ...tion must support WMM WMM shall be enabled on EAP 200 WMM shall be enabled in the wireless adapter on client s computer IAPP IAPP Inter Access Point Protocol is a protocol by which access points share...

Page 59: ...tings Page Maximum Number of Clients EAP 200 supports various methods of authenticating clients for wireless LAN access The default policy is unlimited access without any authentication required To re...

Page 60: ...L Allow List only the client devices identified by their MAC addresses listed in the Allow List allowed MAC addresses are granted with access to the system The administrator can temporarily block any...

Page 61: ...Deny List all client devices are granted with access to the system except those listed in the Deny List denied MAC addresses The administrator can allow any denied MAC address to connect to the syste...

Page 62: ...external RADIUS When RADIUS ACL is selected all incoming MAC addresses will be authenticated by an external RADIUS Please note that each VAP s MAC ACL and its security type shown on the Security Setti...

Page 63: ...o extend its wireless service coverage on this page SSID The SSID Service Set ID of the AP found in this system s coverage area MAC Address The MAC address of the respective AP Channel The channel num...

Page 64: ...nfigure the WPA PSK setting for associating with the target AP The following configuration box will then appear at the bottom of the screen Information provided here must be consistent with the securi...

Page 65: ...Settings a 7 3 1 Firewall List It provides an overview of firewall rules in the system 6 default rules with up to total 20 firewall rules are available for configuration Firewall List Page From the ov...

Page 66: ...is specific rule will decide its priority among available firewall rules in the table Rule name The rule name can be specified here EtherType The drop down list will provide the available types of tra...

Page 67: ...ination MAC IP Address Mask indicates the destination IP address when EtherType is IPv4 ARP IP MAC MASK indicate the ARP payload fields Action The rule can be chosen to be Block or Pass Remark The not...

Page 68: ...68 Please make sure all desired rules state of rule are checked and saved in overview page the rule will be enforced upon system reboot...

Page 69: ...ols These services are available to choose from drop down list of layer2 firewall rule edit page with Ether Type to be IPv4 The first 28 entries are default services and the administrator can add dele...

Page 70: ...dated against ARP spoofing o Force DHCP option when enabled the AP only learns MAC IP pair information through DHCP packets Since devices configured with static IP address does not send DHCP traffic t...

Page 71: ...is highly recommended to change the administrator s password to a secure password Only alpha numeric characters are allowed and it is also recommended to make use of a combination of both numeric and...

Page 72: ...w will appear during the reboot period The system power must be kept turn on before the completion of the reboot process The System Overview page will appear upon the completion of reboot Backup Syste...

Page 73: ...ation message appearing to notify the administrator to restart the system after a successful firmware upgrade Please restart the system after upgrading the firmware System Upgrade Page Note It is reco...

Page 74: ...Click Reboot to restart the system Please wait for the blinking timer to complete its countdown before accessing the system s Web Management Interface again The System Overview page will appear after...

Page 75: ...advanced configuration for the CAPWAP to manage Certificates Certificate It provides Certificate security for CAPWAP to ensures the safety between Access Controller and WAP Use Default Certificate Cli...

Page 76: ...current condition and state of the system and includes the following functions Overview Associated Clients Repeater and Event Log a 7 5 1 Overview The System Overview page provides an overview of the...

Page 77: ...ss of the LAN Interface IP Address The IP address of the LAN Interface Subnet Mask The Subnet Mask of the LAN Interface Gateway The Gateway of the LAN Interface Radio Status MAC Address The MAC addres...

Page 78: ...on performance Associated Client Status Page Associated VAP The name of a VAP Virtual Access Point that the client is associated with ESSID The Extended Service Set ID which the client is associated w...

Page 79: ...79 c 7 5 3 Repeater The administrator can review detailed information of the repeater function on this page Information of repeater s status mode and encryption is provided Repeater Status Page...

Page 80: ...n the event happened Hostname Indicates which host recorded this event Note that all events on this page are local events so the hostname in this field is always the same However in remote SYSLOG serv...

Page 81: ...7 06 7 6 Online Help The Help button is at the upper right corner of the display screen Click Help for the Online Help window and then click the hyperlink of the relevant information needed Online He...

Search results

Summary of Contents for EAP-200

Reviews:

Related manuals for EAP-200

Brands by name

Popular brands

LevelOne EAP-200, User Manual

Search results

Summary of Contents for EAP-200

Reviews:

Related manuals for EAP-200

Brands by name

Popular brands